$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/B70BB8BA0BEE11F1B88CA9ED363D8C67.roa File: B70BB8BA0BEE11F1B88CA9ED363D8C67.roa (raw, json) Hash identifier: Wd06bOOHQlxEYDwnoV/cxJP3086dYyhZ/SXoJ+BOwSI= Subject key identifier: 8D:64:4A:04:EB:04:52:89:90:48:B0:5E:A6:F3:CC:2C:04:9C:02:E7 Certificate issuer: /CN=A91A5308/serialNumber=7B59055212849105AD6F39E5881D842E707439AF Certificate serial: 0D65 Authority key identifier: 7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/B70BB8BA0BEE11F1B88CA9ED363D8C67.roa Signing time: Sun 01 Mar 2026 17:21:44 +0000 ROA not before: Tue 17 Feb 2026 10:52:13 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138638 IP address blocks: 103.135.88.0/24 maxlen: 24 103.135.89.0/24 maxlen: 24 2404:7840::/32 maxlen: 32 2404:7840::/48 maxlen: 48 2404:7840:1::/48 maxlen: 48 2404:7840:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.crl rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3429 (0xd65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5308, serialNumber=7B59055212849105AD6F39E5881D842E707439AF Validity Not Before: Feb 17 10:52:13 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a475a8-4571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8c:47:75:44:9a:1b:4f:b0:61:d3:40:da:2b: 14:ef:f8:ce:8b:93:0d:96:9f:79:11:15:1f:f4:90: 37:06:a8:45:9e:fd:89:2c:7c:ea:3a:76:37:b8:3f: 24:7f:8b:35:13:71:84:28:42:9d:9a:0f:56:72:ed: d8:93:57:ed:2f:f9:6c:e2:b0:b1:9a:2a:dc:a7:e8: 23:e9:c4:b8:a3:9d:89:c3:a6:f8:d2:47:fa:46:23: 6b:15:5a:b5:de:e3:1c:fb:d9:e6:ac:78:af:74:22: 7a:1a:26:85:bd:90:b2:18:0a:3d:ef:0f:4a:ce:03: 13:a0:49:4f:98:d5:1d:49:da:19:7b:f7:db:f1:7b: fc:e0:00:d9:c8:8b:3b:ac:5e:9b:08:38:80:d0:b3: 1c:a9:64:22:74:69:a7:6b:63:18:34:4d:27:10:e8: e4:b6:2d:a7:bb:44:c5:ad:0c:b7:b4:32:81:12:73: 44:86:16:c7:26:38:06:46:42:4c:aa:20:d9:5c:92: 1c:86:d9:9e:3c:0d:06:11:57:7c:97:83:cb:5e:89: 8b:87:f5:b5:37:8d:2b:46:51:c7:d1:8e:18:f2:16: 55:ca:4b:f9:f8:31:a9:44:ec:2e:05:9a:a5:ac:c9: cd:7f:68:bc:1e:ff:62:ba:87:86:0f:fd:49:1b:fe: 6d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:64:4A:04:EB:04:52:89:90:48:B0:5E:A6:F3:CC:2C:04:9C:02:E7 X509v3 Authority Key Identifier: keyid:7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/B70BB8BA0BEE11F1B88CA9ED363D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.135.88.0/23 IPv6: 2404:7840::/32 Signature Algorithm: sha256WithRSAEncryption f3:8e:8b:45:24:ee:b5:17:ad:62:b6:4a:b4:bd:36:05:68:87: 4b:9b:9e:f2:0e:24:42:59:32:a4:96:3c:43:7d:4c:9b:c1:f4: 13:9a:59:38:03:af:16:e1:56:dd:8e:59:d5:96:08:c1:de:15: 6d:e7:4a:14:cb:9c:27:49:36:8f:3f:2f:d4:4c:ff:8f:b2:63: ff:f7:ca:ca:25:29:23:c1:64:64:49:38:e9:d4:26:24:2b:61: 55:83:c7:6e:bf:27:e5:35:07:cf:70:a5:0c:03:ed:90:1b:b3: 4d:6d:2a:07:9a:43:5e:fa:0e:fa:1d:a5:16:be:ad:44:56:5a: fd:8f:90:82:2a:5b:76:cc:f5:40:d7:fc:1d:57:10:4b:da:a6: 6a:6d:f0:6d:58:d4:65:2e:9f:31:95:6b:1c:2b:1e:13:75:fe: 5d:03:6a:98:b2:9a:ad:ed:03:fb:8c:e7:85:d5:3f:78:78:06: 8c:f6:94:b2:08:0e:58:dc:b3:c3:cd:d5:a1:5b:51:b3:7e:32: bc:77:7f:c0:b2:69:9a:02:0e:50:5f:ed:60:90:74:06:e1:cf: 68:e8:5c:1d:29:0d:ad:d7:f3:2e:6b:07:1a:bf:f3:a3:f4:93: 76:ab:d7:a6:5e:a7:07:6d:73:8f:db:f2:f1:a1:59:3f:49:33: e6:82:9f:ff -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUzMDgxMTAvBgNVBAUTKDdCNTkwNTUyMTI4NDkxMDVBRDZGMzlFNTg4MUQ4NDJF NzA3NDM5QUYwHhcNMjYwMjE3MTA1MjEzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzVhOC00NTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4xHdUSaG0+wYdNA2isU7/jOi5MNlp95ERUf9JA3BqhFnv2JLHzqOnY3uD8k f4s1E3GEKEKdmg9Wcu3Yk1ftL/ls4rCxmircp+gj6cS4o52Jw6b40kf6RiNrFVq1 3uMc+9nmrHivdCJ6GiaFvZCyGAo97w9KzgMToElPmNUdSdoZe/fb8Xv84ADZyIs7 rF6bCDiA0LMcqWQidGmna2MYNE0nEOjkti2nu0TFrQy3tDKBEnNEhhbHJjgGRkJM qiDZXJIchtmePA0GEVd8l4PLXomLh/W1N40rRlHH0Y4Y8hZVykv5+DGpROwuBZql rMnNf2i8Hv9iuoeGD/1JG/5tZwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFI1kSgTr BFKJkEiwXqbzzCwEnALnMB8GA1UdIwQYMBaAFHtZBVIShJEFrW855YgdhC5wdDmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTMwOC9BODE5MTRFMkY0 RDUxMUU5QjkxN0YzNDlDNEY5QUUwMi9lMWtGVWhLRWtRV3Riem5saUIyRUxuQjBP YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Uxa0ZVaEtFa1FXdGJ6bmxpQjJFTG5CME9hOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTUzMDgvQTgxOTE0RTJGNEQ1MTFFOUI5MTdGMzQ5QzRGOUFFMDIvQjcwQkI4QkEw QkVFMTFGMUI4OENBOUVEMzYzRDhDNjcucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4dYMA0EAgACMAcDBQAkBHhAMA0GCSqGSIb3DQEBCwUAA4IBAQDz jotFJO61F61itkq0vTYFaIdLm57yDiRCWTKkljxDfUybwfQTmlk4A68W4VbdjlnV lgjB3hVt50oUy5wnSTaPPy/UTP+PsmP/98rKJSkjwWRkSTjp1CYkK2FVg8duvyfl NQfPcKUMA+2QG7NNbSoHmkNe+g76HaUWvq1EVlr9j5CCKlt2zPVA1/wdVxBL2qZq bfBtWNRlLp8xlWscKx4Tdf5dA2qYspqt7QP7jOeF1T94eAaM9pSyCA5Y3LPDzdWh W1GzfjK8d3/AsmmaAg5QX+1gkHQG4c9o6FwdKQ2t1/Muawcav/Oj9JN2q9emXqcH bXOP2/LxoVk/STPmgp// -----END CERTIFICATE-----Generated at Thu Mar 26 21:31:47 2026 by rpki-client